From 26bb4d3f051faa68a49f8adeac60c41d4b3548ef Mon Sep 17 00:00:00 2001 From: Google APIs Date: Thu, 12 Dec 2019 00:37:33 +0000 Subject: [PATCH] Autogenerated update (2019-12-12) Update: - cloudiot_v1 - cloudresourcemanager_v1 - cloudresourcemanager_v1beta1 - cloudresourcemanager_v2 - cloudresourcemanager_v2beta1 - cloudsearch_v1 - cloudtasks_v2 - containeranalysis_v1alpha1 - containeranalysis_v1beta1 - dlp_v2 - iap_v1 - serviceconsumermanagement_v1 --- generated/google/apis/cloudiot_v1.rb | 2 +- generated/google/apis/cloudiot_v1/classes.rb | 116 ++++--- .../google/apis/cloudresourcemanager_v1.rb | 2 +- .../apis/cloudresourcemanager_v1/classes.rb | 116 ++++--- .../apis/cloudresourcemanager_v1beta1.rb | 2 +- .../cloudresourcemanager_v1beta1/classes.rb | 116 ++++--- .../cloudresourcemanager_v1beta1/service.rb | 2 +- .../google/apis/cloudresourcemanager_v2.rb | 2 +- .../apis/cloudresourcemanager_v2/classes.rb | 116 ++++--- .../apis/cloudresourcemanager_v2beta1.rb | 2 +- .../cloudresourcemanager_v2beta1/classes.rb | 116 ++++--- generated/google/apis/cloudsearch_v1.rb | 2 +- .../google/apis/cloudsearch_v1/classes.rb | 5 +- generated/google/apis/cloudtasks_v2.rb | 2 +- .../google/apis/cloudtasks_v2/classes.rb | 128 +++++--- .../google/apis/containeranalysis_v1alpha1.rb | 2 +- .../containeranalysis_v1alpha1/classes.rb | 116 ++++--- .../google/apis/containeranalysis_v1beta1.rb | 2 +- .../apis/containeranalysis_v1beta1/classes.rb | 120 ++++--- .../apis/containeranalysis_v1beta1/service.rb | 46 +-- generated/google/apis/dlp_v2.rb | 2 +- generated/google/apis/dlp_v2/classes.rb | 77 +++++ .../google/apis/dlp_v2/representations.rb | 42 +++ generated/google/apis/iap_v1.rb | 2 +- generated/google/apis/iap_v1/classes.rb | 265 +++++++++++++--- .../google/apis/iap_v1/representations.rb | 84 +++++ generated/google/apis/iap_v1/service.rb | 292 ++++++++++++++++++ .../apis/serviceconsumermanagement_v1.rb | 2 +- .../serviceconsumermanagement_v1/classes.rb | 69 +++++ .../representations.rb | 31 ++ 30 files changed, 1470 insertions(+), 411 deletions(-) diff --git a/generated/google/apis/cloudiot_v1.rb b/generated/google/apis/cloudiot_v1.rb index d33b6cf0b..3f33698eb 100644 --- a/generated/google/apis/cloudiot_v1.rb +++ b/generated/google/apis/cloudiot_v1.rb @@ -26,7 +26,7 @@ module Google # @see https://cloud.google.com/iot module CloudiotV1 VERSION = 'V1' - REVISION = '20191112' + REVISION = '20191203' # View and manage your data across Google Cloud Platform services AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' diff --git a/generated/google/apis/cloudiot_v1/classes.rb b/generated/google/apis/cloudiot_v1/classes.rb index fa4044047..f8fb72fdf 100644 --- a/generated/google/apis/cloudiot_v1/classes.rb +++ b/generated/google/apis/cloudiot_v1/classes.rb @@ -87,6 +87,23 @@ module Google # account. For example, `my-other-app@appspot.gserviceaccount.com`. # * `group:`emailid``: An email address that represents a Google group. # For example, `admins@example.com`. + # * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a user that has been recently deleted. For + # example, `alice@example.com?uid=123456789012345678901`. If the user is + # recovered, this value reverts to `user:`emailid`` and the recovered user + # retains the role in the binding. + # * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus + # unique identifier) representing a service account that has been recently + # deleted. For example, + # `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. + # If the service account is undeleted, this value reverts to + # `serviceAccount:`emailid`` and the undeleted service account retains the + # role in the binding. + # * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a Google group that has been recently + # deleted. For example, `admins@example.com?uid=123456789012345678901`. If + # the group is recovered, this value reverts to `group:`emailid`` and the + # recovered group retains the role in the binding. # * `domain:`domain``: The G Suite domain (primary) that represents all the # users of that domain. For example, `google.com` or `example.com`. # Corresponds to the JSON property `members` @@ -793,16 +810,18 @@ module Google end end - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -820,13 +839,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -841,14 +862,16 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). class Policy include Google::Apis::Core::Hashable - # Associates a list of `members` to a `role`. Optionally may specify a - # `condition` that determines when binding is in effect. - # `bindings` with no members will result in an error. + # Associates a list of `members` to a `role`. Optionally, may specify a + # `condition` that determines how and when the `bindings` are applied. Each + # of the `bindings` must contain at least one member. # Corresponds to the JSON property `bindings` # @return [Array] attr_accessor :bindings @@ -860,26 +883,31 @@ module Google # conditions: An `etag` is returned in the response to `getIamPolicy`, and # systems are expected to put that etag in the request to `setIamPolicy` to # ensure that their change will be applied to the same version of the policy. - # If no `etag` is provided in the call to `setIamPolicy`, then the existing - # policy is overwritten. Due to blind-set semantics of an etag-less policy, - # 'setIamPolicy' will not fail even if the incoming policy version does not - # meet the requirements for modifying the stored policy. + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. # Corresponds to the JSON property `etag` # NOTE: Values are automatically base64 encoded/decoded in the client library. # @return [String] attr_accessor :etag # Specifies the format of the policy. - # Valid values are 0, 1, and 3. Requests specifying an invalid value will be - # rejected. - # Operations affecting conditional bindings must specify version 3. This can - # be either setting a conditional policy, modifying a conditional binding, - # or removing a binding (conditional or unconditional) from the stored - # conditional policy. - # Operations on non-conditional policies may specify any valid value or - # leave the field unset. - # If no etag is provided in the call to `setIamPolicy`, version compliance - # checks against the stored policy is skipped. + # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value + # are rejected. + # Any operation that affects conditional role bindings must specify version + # `3`. This requirement applies to the following operations: + # * Getting a policy that includes a conditional role binding + # * Adding a conditional role binding to a policy + # * Changing a conditional role binding in a policy + # * Removing any role binding, with or without a condition, from a policy + # that includes conditions + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. + # If a policy does not include any conditions, operations on that policy may + # specify any valid version or leave the field unset. # Corresponds to the JSON property `version` # @return [Fixnum] attr_accessor :version @@ -1018,16 +1046,18 @@ module Google class SetIamPolicyRequest include Google::Apis::Core::Hashable - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -1045,13 +1075,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -1066,8 +1098,10 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). # Corresponds to the JSON property `policy` # @return [Google::Apis::CloudiotV1::Policy] attr_accessor :policy diff --git a/generated/google/apis/cloudresourcemanager_v1.rb b/generated/google/apis/cloudresourcemanager_v1.rb index 11beb25a0..ca76583fc 100644 --- a/generated/google/apis/cloudresourcemanager_v1.rb +++ b/generated/google/apis/cloudresourcemanager_v1.rb @@ -26,7 +26,7 @@ module Google # @see https://cloud.google.com/resource-manager module CloudresourcemanagerV1 VERSION = 'V1' - REVISION = '20191115' + REVISION = '20191206' # View and manage your data across Google Cloud Platform services AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' diff --git a/generated/google/apis/cloudresourcemanager_v1/classes.rb b/generated/google/apis/cloudresourcemanager_v1/classes.rb index 205b52df3..839ac0d95 100644 --- a/generated/google/apis/cloudresourcemanager_v1/classes.rb +++ b/generated/google/apis/cloudresourcemanager_v1/classes.rb @@ -184,6 +184,23 @@ module Google # account. For example, `my-other-app@appspot.gserviceaccount.com`. # * `group:`emailid``: An email address that represents a Google group. # For example, `admins@example.com`. + # * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a user that has been recently deleted. For + # example, `alice@example.com?uid=123456789012345678901`. If the user is + # recovered, this value reverts to `user:`emailid`` and the recovered user + # retains the role in the binding. + # * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus + # unique identifier) representing a service account that has been recently + # deleted. For example, + # `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. + # If the service account is undeleted, this value reverts to + # `serviceAccount:`emailid`` and the undeleted service account retains the + # role in the binding. + # * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a Google group that has been recently + # deleted. For example, `admins@example.com?uid=123456789012345678901`. If + # the group is recovered, this value reverts to `group:`emailid`` and the + # recovered group retains the role in the binding. # * `domain:`domain``: The G Suite domain (primary) that represents all the # users of that domain. For example, `google.com` or `example.com`. # Corresponds to the JSON property `members` @@ -1289,16 +1306,18 @@ module Google end end - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -1316,13 +1335,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -1337,8 +1358,10 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). class Policy include Google::Apis::Core::Hashable @@ -1347,9 +1370,9 @@ module Google # @return [Array] attr_accessor :audit_configs - # Associates a list of `members` to a `role`. Optionally may specify a - # `condition` that determines when binding is in effect. - # `bindings` with no members will result in an error. + # Associates a list of `members` to a `role`. Optionally, may specify a + # `condition` that determines how and when the `bindings` are applied. Each + # of the `bindings` must contain at least one member. # Corresponds to the JSON property `bindings` # @return [Array] attr_accessor :bindings @@ -1361,26 +1384,31 @@ module Google # conditions: An `etag` is returned in the response to `getIamPolicy`, and # systems are expected to put that etag in the request to `setIamPolicy` to # ensure that their change will be applied to the same version of the policy. - # If no `etag` is provided in the call to `setIamPolicy`, then the existing - # policy is overwritten. Due to blind-set semantics of an etag-less policy, - # 'setIamPolicy' will not fail even if the incoming policy version does not - # meet the requirements for modifying the stored policy. + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. # Corresponds to the JSON property `etag` # NOTE: Values are automatically base64 encoded/decoded in the client library. # @return [String] attr_accessor :etag # Specifies the format of the policy. - # Valid values are 0, 1, and 3. Requests specifying an invalid value will be - # rejected. - # Operations affecting conditional bindings must specify version 3. This can - # be either setting a conditional policy, modifying a conditional binding, - # or removing a binding (conditional or unconditional) from the stored - # conditional policy. - # Operations on non-conditional policies may specify any valid value or - # leave the field unset. - # If no etag is provided in the call to `setIamPolicy`, version compliance - # checks against the stored policy is skipped. + # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value + # are rejected. + # Any operation that affects conditional role bindings must specify version + # `3`. This requirement applies to the following operations: + # * Getting a policy that includes a conditional role binding + # * Adding a conditional role binding to a policy + # * Changing a conditional role binding in a policy + # * Removing any role binding, with or without a condition, from a policy + # that includes conditions + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. + # If a policy does not include any conditions, operations on that policy may + # specify any valid version or leave the field unset. # Corresponds to the JSON property `version` # @return [Fixnum] attr_accessor :version @@ -1648,16 +1676,18 @@ module Google class SetIamPolicyRequest include Google::Apis::Core::Hashable - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -1675,13 +1705,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -1696,8 +1728,10 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). # Corresponds to the JSON property `policy` # @return [Google::Apis::CloudresourcemanagerV1::Policy] attr_accessor :policy diff --git a/generated/google/apis/cloudresourcemanager_v1beta1.rb b/generated/google/apis/cloudresourcemanager_v1beta1.rb index fb0c76168..158863fa2 100644 --- a/generated/google/apis/cloudresourcemanager_v1beta1.rb +++ b/generated/google/apis/cloudresourcemanager_v1beta1.rb @@ -26,7 +26,7 @@ module Google # @see https://cloud.google.com/resource-manager module CloudresourcemanagerV1beta1 VERSION = 'V1beta1' - REVISION = '20191115' + REVISION = '20191206' # View and manage your data across Google Cloud Platform services AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' diff --git a/generated/google/apis/cloudresourcemanager_v1beta1/classes.rb b/generated/google/apis/cloudresourcemanager_v1beta1/classes.rb index 3a00b34a7..141049ca1 100644 --- a/generated/google/apis/cloudresourcemanager_v1beta1/classes.rb +++ b/generated/google/apis/cloudresourcemanager_v1beta1/classes.rb @@ -184,6 +184,23 @@ module Google # account. For example, `my-other-app@appspot.gserviceaccount.com`. # * `group:`emailid``: An email address that represents a Google group. # For example, `admins@example.com`. + # * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a user that has been recently deleted. For + # example, `alice@example.com?uid=123456789012345678901`. If the user is + # recovered, this value reverts to `user:`emailid`` and the recovered user + # retains the role in the binding. + # * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus + # unique identifier) representing a service account that has been recently + # deleted. For example, + # `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. + # If the service account is undeleted, this value reverts to + # `serviceAccount:`emailid`` and the undeleted service account retains the + # role in the binding. + # * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a Google group that has been recently + # deleted. For example, `admins@example.com?uid=123456789012345678901`. If + # the group is recovered, this value reverts to `group:`emailid`` and the + # recovered group retains the role in the binding. # * `domain:`domain``: The G Suite domain (primary) that represents all the # users of that domain. For example, `google.com` or `example.com`. # Corresponds to the JSON property `members` @@ -560,16 +577,18 @@ module Google end end - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -587,13 +606,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -608,8 +629,10 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). class Policy include Google::Apis::Core::Hashable @@ -618,9 +641,9 @@ module Google # @return [Array] attr_accessor :audit_configs - # Associates a list of `members` to a `role`. Optionally may specify a - # `condition` that determines when binding is in effect. - # `bindings` with no members will result in an error. + # Associates a list of `members` to a `role`. Optionally, may specify a + # `condition` that determines how and when the `bindings` are applied. Each + # of the `bindings` must contain at least one member. # Corresponds to the JSON property `bindings` # @return [Array] attr_accessor :bindings @@ -632,26 +655,31 @@ module Google # conditions: An `etag` is returned in the response to `getIamPolicy`, and # systems are expected to put that etag in the request to `setIamPolicy` to # ensure that their change will be applied to the same version of the policy. - # If no `etag` is provided in the call to `setIamPolicy`, then the existing - # policy is overwritten. Due to blind-set semantics of an etag-less policy, - # 'setIamPolicy' will not fail even if the incoming policy version does not - # meet the requirements for modifying the stored policy. + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. # Corresponds to the JSON property `etag` # NOTE: Values are automatically base64 encoded/decoded in the client library. # @return [String] attr_accessor :etag # Specifies the format of the policy. - # Valid values are 0, 1, and 3. Requests specifying an invalid value will be - # rejected. - # Operations affecting conditional bindings must specify version 3. This can - # be either setting a conditional policy, modifying a conditional binding, - # or removing a binding (conditional or unconditional) from the stored - # conditional policy. - # Operations on non-conditional policies may specify any valid value or - # leave the field unset. - # If no etag is provided in the call to `setIamPolicy`, version compliance - # checks against the stored policy is skipped. + # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value + # are rejected. + # Any operation that affects conditional role bindings must specify version + # `3`. This requirement applies to the following operations: + # * Getting a policy that includes a conditional role binding + # * Adding a conditional role binding to a policy + # * Changing a conditional role binding in a policy + # * Removing any role binding, with or without a condition, from a policy + # that includes conditions + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. + # If a policy does not include any conditions, operations on that policy may + # specify any valid version or leave the field unset. # Corresponds to the JSON property `version` # @return [Fixnum] attr_accessor :version @@ -824,16 +852,18 @@ module Google class SetIamPolicyRequest include Google::Apis::Core::Hashable - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -851,13 +881,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -872,8 +904,10 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). # Corresponds to the JSON property `policy` # @return [Google::Apis::CloudresourcemanagerV1beta1::Policy] attr_accessor :policy diff --git a/generated/google/apis/cloudresourcemanager_v1beta1/service.rb b/generated/google/apis/cloudresourcemanager_v1beta1/service.rb index d611a2e0a..e9d89d8dd 100644 --- a/generated/google/apis/cloudresourcemanager_v1beta1/service.rb +++ b/generated/google/apis/cloudresourcemanager_v1beta1/service.rb @@ -290,7 +290,7 @@ module Google # (/billing/reference/rest/v1/projects/updateBillingInfo) method. # @param [Google::Apis::CloudresourcemanagerV1beta1::Project] project_object # @param [Boolean] use_legacy_stack - # A safety hatch to opt out of the new reliable project creation process. + # A now unused experiment opt-out option. # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user diff --git a/generated/google/apis/cloudresourcemanager_v2.rb b/generated/google/apis/cloudresourcemanager_v2.rb index 1cd4b0f0a..a5eb11e10 100644 --- a/generated/google/apis/cloudresourcemanager_v2.rb +++ b/generated/google/apis/cloudresourcemanager_v2.rb @@ -26,7 +26,7 @@ module Google # @see https://cloud.google.com/resource-manager module CloudresourcemanagerV2 VERSION = 'V2' - REVISION = '20191115' + REVISION = '20191206' # View and manage your data across Google Cloud Platform services AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' diff --git a/generated/google/apis/cloudresourcemanager_v2/classes.rb b/generated/google/apis/cloudresourcemanager_v2/classes.rb index cf2d0cc3c..620e55467 100644 --- a/generated/google/apis/cloudresourcemanager_v2/classes.rb +++ b/generated/google/apis/cloudresourcemanager_v2/classes.rb @@ -162,6 +162,23 @@ module Google # account. For example, `my-other-app@appspot.gserviceaccount.com`. # * `group:`emailid``: An email address that represents a Google group. # For example, `admins@example.com`. + # * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a user that has been recently deleted. For + # example, `alice@example.com?uid=123456789012345678901`. If the user is + # recovered, this value reverts to `user:`emailid`` and the recovered user + # retains the role in the binding. + # * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus + # unique identifier) representing a service account that has been recently + # deleted. For example, + # `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. + # If the service account is undeleted, this value reverts to + # `serviceAccount:`emailid`` and the undeleted service account retains the + # role in the binding. + # * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a Google group that has been recently + # deleted. For example, `admins@example.com?uid=123456789012345678901`. If + # the group is recovered, this value reverts to `group:`emailid`` and the + # recovered group retains the role in the binding. # * `domain:`domain``: The G Suite domain (primary) that represents all the # users of that domain. For example, `google.com` or `example.com`. # Corresponds to the JSON property `members` @@ -502,16 +519,18 @@ module Google end end - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -529,13 +548,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -550,8 +571,10 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). class Policy include Google::Apis::Core::Hashable @@ -560,9 +583,9 @@ module Google # @return [Array] attr_accessor :audit_configs - # Associates a list of `members` to a `role`. Optionally may specify a - # `condition` that determines when binding is in effect. - # `bindings` with no members will result in an error. + # Associates a list of `members` to a `role`. Optionally, may specify a + # `condition` that determines how and when the `bindings` are applied. Each + # of the `bindings` must contain at least one member. # Corresponds to the JSON property `bindings` # @return [Array] attr_accessor :bindings @@ -574,26 +597,31 @@ module Google # conditions: An `etag` is returned in the response to `getIamPolicy`, and # systems are expected to put that etag in the request to `setIamPolicy` to # ensure that their change will be applied to the same version of the policy. - # If no `etag` is provided in the call to `setIamPolicy`, then the existing - # policy is overwritten. Due to blind-set semantics of an etag-less policy, - # 'setIamPolicy' will not fail even if the incoming policy version does not - # meet the requirements for modifying the stored policy. + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. # Corresponds to the JSON property `etag` # NOTE: Values are automatically base64 encoded/decoded in the client library. # @return [String] attr_accessor :etag # Specifies the format of the policy. - # Valid values are 0, 1, and 3. Requests specifying an invalid value will be - # rejected. - # Operations affecting conditional bindings must specify version 3. This can - # be either setting a conditional policy, modifying a conditional binding, - # or removing a binding (conditional or unconditional) from the stored - # conditional policy. - # Operations on non-conditional policies may specify any valid value or - # leave the field unset. - # If no etag is provided in the call to `setIamPolicy`, version compliance - # checks against the stored policy is skipped. + # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value + # are rejected. + # Any operation that affects conditional role bindings must specify version + # `3`. This requirement applies to the following operations: + # * Getting a policy that includes a conditional role binding + # * Adding a conditional role binding to a policy + # * Changing a conditional role binding in a policy + # * Removing any role binding, with or without a condition, from a policy + # that includes conditions + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. + # If a policy does not include any conditions, operations on that policy may + # specify any valid version or leave the field unset. # Corresponds to the JSON property `version` # @return [Fixnum] attr_accessor :version @@ -729,16 +757,18 @@ module Google class SetIamPolicyRequest include Google::Apis::Core::Hashable - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -756,13 +786,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -777,8 +809,10 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). # Corresponds to the JSON property `policy` # @return [Google::Apis::CloudresourcemanagerV2::Policy] attr_accessor :policy diff --git a/generated/google/apis/cloudresourcemanager_v2beta1.rb b/generated/google/apis/cloudresourcemanager_v2beta1.rb index 9d41b5e1a..49a1d064e 100644 --- a/generated/google/apis/cloudresourcemanager_v2beta1.rb +++ b/generated/google/apis/cloudresourcemanager_v2beta1.rb @@ -26,7 +26,7 @@ module Google # @see https://cloud.google.com/resource-manager module CloudresourcemanagerV2beta1 VERSION = 'V2beta1' - REVISION = '20191115' + REVISION = '20191206' # View and manage your data across Google Cloud Platform services AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' diff --git a/generated/google/apis/cloudresourcemanager_v2beta1/classes.rb b/generated/google/apis/cloudresourcemanager_v2beta1/classes.rb index fdb83cf0e..ff0d3ebe2 100644 --- a/generated/google/apis/cloudresourcemanager_v2beta1/classes.rb +++ b/generated/google/apis/cloudresourcemanager_v2beta1/classes.rb @@ -162,6 +162,23 @@ module Google # account. For example, `my-other-app@appspot.gserviceaccount.com`. # * `group:`emailid``: An email address that represents a Google group. # For example, `admins@example.com`. + # * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a user that has been recently deleted. For + # example, `alice@example.com?uid=123456789012345678901`. If the user is + # recovered, this value reverts to `user:`emailid`` and the recovered user + # retains the role in the binding. + # * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus + # unique identifier) representing a service account that has been recently + # deleted. For example, + # `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. + # If the service account is undeleted, this value reverts to + # `serviceAccount:`emailid`` and the undeleted service account retains the + # role in the binding. + # * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a Google group that has been recently + # deleted. For example, `admins@example.com?uid=123456789012345678901`. If + # the group is recovered, this value reverts to `group:`emailid`` and the + # recovered group retains the role in the binding. # * `domain:`domain``: The G Suite domain (primary) that represents all the # users of that domain. For example, `google.com` or `example.com`. # Corresponds to the JSON property `members` @@ -502,16 +519,18 @@ module Google end end - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -529,13 +548,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -550,8 +571,10 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). class Policy include Google::Apis::Core::Hashable @@ -560,9 +583,9 @@ module Google # @return [Array] attr_accessor :audit_configs - # Associates a list of `members` to a `role`. Optionally may specify a - # `condition` that determines when binding is in effect. - # `bindings` with no members will result in an error. + # Associates a list of `members` to a `role`. Optionally, may specify a + # `condition` that determines how and when the `bindings` are applied. Each + # of the `bindings` must contain at least one member. # Corresponds to the JSON property `bindings` # @return [Array] attr_accessor :bindings @@ -574,26 +597,31 @@ module Google # conditions: An `etag` is returned in the response to `getIamPolicy`, and # systems are expected to put that etag in the request to `setIamPolicy` to # ensure that their change will be applied to the same version of the policy. - # If no `etag` is provided in the call to `setIamPolicy`, then the existing - # policy is overwritten. Due to blind-set semantics of an etag-less policy, - # 'setIamPolicy' will not fail even if the incoming policy version does not - # meet the requirements for modifying the stored policy. + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. # Corresponds to the JSON property `etag` # NOTE: Values are automatically base64 encoded/decoded in the client library. # @return [String] attr_accessor :etag # Specifies the format of the policy. - # Valid values are 0, 1, and 3. Requests specifying an invalid value will be - # rejected. - # Operations affecting conditional bindings must specify version 3. This can - # be either setting a conditional policy, modifying a conditional binding, - # or removing a binding (conditional or unconditional) from the stored - # conditional policy. - # Operations on non-conditional policies may specify any valid value or - # leave the field unset. - # If no etag is provided in the call to `setIamPolicy`, version compliance - # checks against the stored policy is skipped. + # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value + # are rejected. + # Any operation that affects conditional role bindings must specify version + # `3`. This requirement applies to the following operations: + # * Getting a policy that includes a conditional role binding + # * Adding a conditional role binding to a policy + # * Changing a conditional role binding in a policy + # * Removing any role binding, with or without a condition, from a policy + # that includes conditions + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. + # If a policy does not include any conditions, operations on that policy may + # specify any valid version or leave the field unset. # Corresponds to the JSON property `version` # @return [Fixnum] attr_accessor :version @@ -729,16 +757,18 @@ module Google class SetIamPolicyRequest include Google::Apis::Core::Hashable - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -756,13 +786,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -777,8 +809,10 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). # Corresponds to the JSON property `policy` # @return [Google::Apis::CloudresourcemanagerV2beta1::Policy] attr_accessor :policy diff --git a/generated/google/apis/cloudsearch_v1.rb b/generated/google/apis/cloudsearch_v1.rb index 35c78f308..7bd771915 100644 --- a/generated/google/apis/cloudsearch_v1.rb +++ b/generated/google/apis/cloudsearch_v1.rb @@ -26,7 +26,7 @@ module Google # @see https://developers.google.com/cloud-search/docs/guides/ module CloudsearchV1 VERSION = 'V1' - REVISION = '20191112' + REVISION = '20191202' # Index and serve your organization's data with Cloud Search AUTH_CLOUD_SEARCH = 'https://www.googleapis.com/auth/cloud_search' diff --git a/generated/google/apis/cloudsearch_v1/classes.rb b/generated/google/apis/cloudsearch_v1/classes.rb index 7b94914a1..8095c4a65 100644 --- a/generated/google/apis/cloudsearch_v1/classes.rb +++ b/generated/google/apis/cloudsearch_v1/classes.rb @@ -3254,7 +3254,7 @@ module Google # The interpretation of the query used in search. For example, queries with # natural language intent like "email from john" will be interpreted as # "from:john source:mail". This field will not be filled when the reason is - # NO_RESULTS_FOUND_FOR_USER_QUERY. + # NOT_ENOUGH_RESULTS_FOUND_FOR_USER_QUERY. # Corresponds to the JSON property `interpretedQuery` # @return [String] attr_accessor :interpreted_query @@ -4994,7 +4994,8 @@ module Google # @return [Google::Apis::CloudsearchV1::Schema] attr_accessor :schema - # If true, the request will be validated without side effects. + # If true, the schema will be checked for validity, + # but will not be registered with the data source, even if valid. # Corresponds to the JSON property `validateOnly` # @return [Boolean] attr_accessor :validate_only diff --git a/generated/google/apis/cloudtasks_v2.rb b/generated/google/apis/cloudtasks_v2.rb index 9cc6989ad..77ce65d0f 100644 --- a/generated/google/apis/cloudtasks_v2.rb +++ b/generated/google/apis/cloudtasks_v2.rb @@ -25,7 +25,7 @@ module Google # @see https://cloud.google.com/tasks/ module CloudtasksV2 VERSION = 'V2' - REVISION = '20191111' + REVISION = '20191202' # View and manage your data across Google Cloud Platform services AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' diff --git a/generated/google/apis/cloudtasks_v2/classes.rb b/generated/google/apis/cloudtasks_v2/classes.rb index 3c6ef0f0c..c3d24d64d 100644 --- a/generated/google/apis/cloudtasks_v2/classes.rb +++ b/generated/google/apis/cloudtasks_v2/classes.rb @@ -138,8 +138,8 @@ module Google # In addition, Cloud Tasks sets some headers when the task is dispatched, # such as headers containing information about the task; see # [request - # headers](https://cloud.google.com/appengine/docs/python/taskqueue/push/ - # creating-handlers#reading_request_headers). + # headers](https://cloud.google.com/tasks/docs/creating-appengine-handlers# + # reading_request_headers). # These headers are set only when the task is dispatched, so they are not # visible when the task is returned in a Cloud Tasks response. # Although there is no specific limit for the maximum number of headers or @@ -363,6 +363,23 @@ module Google # account. For example, `my-other-app@appspot.gserviceaccount.com`. # * `group:`emailid``: An email address that represents a Google group. # For example, `admins@example.com`. + # * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a user that has been recently deleted. For + # example, `alice@example.com?uid=123456789012345678901`. If the user is + # recovered, this value reverts to `user:`emailid`` and the recovered user + # retains the role in the binding. + # * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus + # unique identifier) representing a service account that has been recently + # deleted. For example, + # `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. + # If the service account is undeleted, this value reverts to + # `serviceAccount:`emailid`` and the undeleted service account retains the + # role in the binding. + # * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a Google group that has been recently + # deleted. For example, `admins@example.com?uid=123456789012345678901`. If + # the group is recovered, this value reverts to `group:`emailid`` and the + # recovered group retains the role in the binding. # * `domain:`domain``: The G Suite domain (primary) that represents all the # users of that domain. For example, `google.com` or `example.com`. # Corresponds to the JSON property `members` @@ -533,7 +550,7 @@ module Google # HTTP request. # The task will be pushed to the worker as an HTTP request. If the worker # or the redirected worker acknowledges the task by returning a successful HTTP - # response code ([`200` - `299`]), the task will removed from the queue. If + # response code ([`200` - `299`]), the task will be removed from the queue. If # any other HTTP response code is returned or no response is received, the # task will be retried according to the following: # * User-specified throttling: retry configuration, @@ -547,7 +564,7 @@ module Google # `429` (Too Many Requests), `503` (Service Unavailable), or the rate of # errors is high, Cloud Tasks will use a higher backoff rate. The retry # specified in the `Retry-After` HTTP response header is considered. - # * To prevent traffic spikes and to smooth sudden large traffic spikes, + # * To prevent traffic spikes and to smooth sudden increases in traffic, # dispatches ramp up slowly when the queue is newly created or idle and # if large numbers of tasks suddenly become available to dispatch (due to # spikes in create task rates, the queue being unpaused, or many tasks @@ -851,16 +868,18 @@ module Google end end - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -878,13 +897,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -899,14 +920,16 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). class Policy include Google::Apis::Core::Hashable - # Associates a list of `members` to a `role`. Optionally may specify a - # `condition` that determines when binding is in effect. - # `bindings` with no members will result in an error. + # Associates a list of `members` to a `role`. Optionally, may specify a + # `condition` that determines how and when the `bindings` are applied. Each + # of the `bindings` must contain at least one member. # Corresponds to the JSON property `bindings` # @return [Array] attr_accessor :bindings @@ -918,26 +941,31 @@ module Google # conditions: An `etag` is returned in the response to `getIamPolicy`, and # systems are expected to put that etag in the request to `setIamPolicy` to # ensure that their change will be applied to the same version of the policy. - # If no `etag` is provided in the call to `setIamPolicy`, then the existing - # policy is overwritten. Due to blind-set semantics of an etag-less policy, - # 'setIamPolicy' will not fail even if the incoming policy version does not - # meet the requirements for modifying the stored policy. + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. # Corresponds to the JSON property `etag` # NOTE: Values are automatically base64 encoded/decoded in the client library. # @return [String] attr_accessor :etag # Specifies the format of the policy. - # Valid values are 0, 1, and 3. Requests specifying an invalid value will be - # rejected. - # Operations affecting conditional bindings must specify version 3. This can - # be either setting a conditional policy, modifying a conditional binding, - # or removing a binding (conditional or unconditional) from the stored - # conditional policy. - # Operations on non-conditional policies may specify any valid value or - # leave the field unset. - # If no etag is provided in the call to `setIamPolicy`, version compliance - # checks against the stored policy is skipped. + # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value + # are rejected. + # Any operation that affects conditional role bindings must specify version + # `3`. This requirement applies to the following operations: + # * Getting a policy that includes a conditional role binding + # * Adding a conditional role binding to a policy + # * Changing a conditional role binding in a policy + # * Removing any role binding, with or without a condition, from a policy + # that includes conditions + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. + # If a policy does not include any conditions, operations on that policy may + # specify any valid version or leave the field unset. # Corresponds to the JSON property `version` # @return [Fixnum] attr_accessor :version @@ -1310,16 +1338,18 @@ module Google class SetIamPolicyRequest include Google::Apis::Core::Hashable - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -1337,13 +1367,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -1358,8 +1390,10 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). # Corresponds to the JSON property `policy` # @return [Google::Apis::CloudtasksV2::Policy] attr_accessor :policy @@ -1526,7 +1560,7 @@ module Google # HTTP request. # The task will be pushed to the worker as an HTTP request. If the worker # or the redirected worker acknowledges the task by returning a successful HTTP - # response code ([`200` - `299`]), the task will removed from the queue. If + # response code ([`200` - `299`]), the task will be removed from the queue. If # any other HTTP response code is returned or no response is received, the # task will be retried according to the following: # * User-specified throttling: retry configuration, @@ -1540,7 +1574,7 @@ module Google # `429` (Too Many Requests), `503` (Service Unavailable), or the rate of # errors is high, Cloud Tasks will use a higher backoff rate. The retry # specified in the `Retry-After` HTTP response header is considered. - # * To prevent traffic spikes and to smooth sudden large traffic spikes, + # * To prevent traffic spikes and to smooth sudden increases in traffic, # dispatches ramp up slowly when the queue is newly created or idle and # if large numbers of tasks suddenly become available to dispatch (due to # spikes in create task rates, the queue being unpaused, or many tasks diff --git a/generated/google/apis/containeranalysis_v1alpha1.rb b/generated/google/apis/containeranalysis_v1alpha1.rb index ec0e06ed9..2808c36f6 100644 --- a/generated/google/apis/containeranalysis_v1alpha1.rb +++ b/generated/google/apis/containeranalysis_v1alpha1.rb @@ -26,7 +26,7 @@ module Google # @see https://cloud.google.com/container-analysis/api/reference/rest/ module ContaineranalysisV1alpha1 VERSION = 'V1alpha1' - REVISION = '20191118' + REVISION = '20191209' # View and manage your data across Google Cloud Platform services AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' diff --git a/generated/google/apis/containeranalysis_v1alpha1/classes.rb b/generated/google/apis/containeranalysis_v1alpha1/classes.rb index 8415e2e29..c07276182 100644 --- a/generated/google/apis/containeranalysis_v1alpha1/classes.rb +++ b/generated/google/apis/containeranalysis_v1alpha1/classes.rb @@ -210,6 +210,23 @@ module Google # account. For example, `my-other-app@appspot.gserviceaccount.com`. # * `group:`emailid``: An email address that represents a Google group. # For example, `admins@example.com`. + # * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a user that has been recently deleted. For + # example, `alice@example.com?uid=123456789012345678901`. If the user is + # recovered, this value reverts to `user:`emailid`` and the recovered user + # retains the role in the binding. + # * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus + # unique identifier) representing a service account that has been recently + # deleted. For example, + # `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. + # If the service account is undeleted, this value reverts to + # `serviceAccount:`emailid`` and the undeleted service account retains the + # role in the binding. + # * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a Google group that has been recently + # deleted. For example, `admins@example.com?uid=123456789012345678901`. If + # the group is recovered, this value reverts to `group:`emailid`` and the + # recovered group retains the role in the binding. # * `domain:`domain``: The G Suite domain (primary) that represents all the # users of that domain. For example, `google.com` or `example.com`. # Corresponds to the JSON property `members` @@ -1937,16 +1954,18 @@ module Google end end - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -1964,13 +1983,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -1985,14 +2006,16 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). class Policy include Google::Apis::Core::Hashable - # Associates a list of `members` to a `role`. Optionally may specify a - # `condition` that determines when binding is in effect. - # `bindings` with no members will result in an error. + # Associates a list of `members` to a `role`. Optionally, may specify a + # `condition` that determines how and when the `bindings` are applied. Each + # of the `bindings` must contain at least one member. # Corresponds to the JSON property `bindings` # @return [Array] attr_accessor :bindings @@ -2004,26 +2027,31 @@ module Google # conditions: An `etag` is returned in the response to `getIamPolicy`, and # systems are expected to put that etag in the request to `setIamPolicy` to # ensure that their change will be applied to the same version of the policy. - # If no `etag` is provided in the call to `setIamPolicy`, then the existing - # policy is overwritten. Due to blind-set semantics of an etag-less policy, - # 'setIamPolicy' will not fail even if the incoming policy version does not - # meet the requirements for modifying the stored policy. + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. # Corresponds to the JSON property `etag` # NOTE: Values are automatically base64 encoded/decoded in the client library. # @return [String] attr_accessor :etag # Specifies the format of the policy. - # Valid values are 0, 1, and 3. Requests specifying an invalid value will be - # rejected. - # Operations affecting conditional bindings must specify version 3. This can - # be either setting a conditional policy, modifying a conditional binding, - # or removing a binding (conditional or unconditional) from the stored - # conditional policy. - # Operations on non-conditional policies may specify any valid value or - # leave the field unset. - # If no etag is provided in the call to `setIamPolicy`, version compliance - # checks against the stored policy is skipped. + # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value + # are rejected. + # Any operation that affects conditional role bindings must specify version + # `3`. This requirement applies to the following operations: + # * Getting a policy that includes a conditional role binding + # * Adding a conditional role binding to a policy + # * Changing a conditional role binding in a policy + # * Removing any role binding, with or without a condition, from a policy + # that includes conditions + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. + # If a policy does not include any conditions, operations on that policy may + # specify any valid version or leave the field unset. # Corresponds to the JSON property `version` # @return [Fixnum] attr_accessor :version @@ -2190,16 +2218,18 @@ module Google class SetIamPolicyRequest include Google::Apis::Core::Hashable - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -2217,13 +2247,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -2238,8 +2270,10 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). # Corresponds to the JSON property `policy` # @return [Google::Apis::ContaineranalysisV1alpha1::Policy] attr_accessor :policy diff --git a/generated/google/apis/containeranalysis_v1beta1.rb b/generated/google/apis/containeranalysis_v1beta1.rb index a229bd98a..39fd541ac 100644 --- a/generated/google/apis/containeranalysis_v1beta1.rb +++ b/generated/google/apis/containeranalysis_v1beta1.rb @@ -26,7 +26,7 @@ module Google # @see https://cloud.google.com/container-analysis/api/reference/rest/ module ContaineranalysisV1beta1 VERSION = 'V1beta1' - REVISION = '20191118' + REVISION = '20191209' # View and manage your data across Google Cloud Platform services AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' diff --git a/generated/google/apis/containeranalysis_v1beta1/classes.rb b/generated/google/apis/containeranalysis_v1beta1/classes.rb index 1e6247a11..a97214047 100644 --- a/generated/google/apis/containeranalysis_v1beta1/classes.rb +++ b/generated/google/apis/containeranalysis_v1beta1/classes.rb @@ -187,7 +187,7 @@ module Google class BatchCreateNotesRequest include Google::Apis::Core::Hashable - # The notes to create. Max allowed length is 1000. + # Required. The notes to create. Max allowed length is 1000. # Corresponds to the JSON property `notes` # @return [Hash] attr_accessor :notes @@ -225,7 +225,7 @@ module Google class BatchCreateOccurrencesRequest include Google::Apis::Core::Hashable - # The occurrences to create. Max allowed length is 1000. + # Required. The occurrences to create. Max allowed length is 1000. # Corresponds to the JSON property `occurrences` # @return [Array] attr_accessor :occurrences @@ -283,6 +283,23 @@ module Google # account. For example, `my-other-app@appspot.gserviceaccount.com`. # * `group:`emailid``: An email address that represents a Google group. # For example, `admins@example.com`. + # * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a user that has been recently deleted. For + # example, `alice@example.com?uid=123456789012345678901`. If the user is + # recovered, this value reverts to `user:`emailid`` and the recovered user + # retains the role in the binding. + # * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus + # unique identifier) representing a service account that has been recently + # deleted. For example, + # `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. + # If the service account is undeleted, this value reverts to + # `serviceAccount:`emailid`` and the undeleted service account retains the + # role in the binding. + # * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a Google group that has been recently + # deleted. For example, `admins@example.com?uid=123456789012345678901`. If + # the group is recovered, this value reverts to `group:`emailid`` and the + # recovered group retains the role in the binding. # * `domain:`domain``: The G Suite domain (primary) that represents all the # users of that domain. For example, `google.com` or `example.com`. # Corresponds to the JSON property `members` @@ -2125,16 +2142,18 @@ module Google end end - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -2152,13 +2171,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -2173,14 +2194,16 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). class Policy include Google::Apis::Core::Hashable - # Associates a list of `members` to a `role`. Optionally may specify a - # `condition` that determines when binding is in effect. - # `bindings` with no members will result in an error. + # Associates a list of `members` to a `role`. Optionally, may specify a + # `condition` that determines how and when the `bindings` are applied. Each + # of the `bindings` must contain at least one member. # Corresponds to the JSON property `bindings` # @return [Array] attr_accessor :bindings @@ -2192,26 +2215,31 @@ module Google # conditions: An `etag` is returned in the response to `getIamPolicy`, and # systems are expected to put that etag in the request to `setIamPolicy` to # ensure that their change will be applied to the same version of the policy. - # If no `etag` is provided in the call to `setIamPolicy`, then the existing - # policy is overwritten. Due to blind-set semantics of an etag-less policy, - # 'setIamPolicy' will not fail even if the incoming policy version does not - # meet the requirements for modifying the stored policy. + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. # Corresponds to the JSON property `etag` # NOTE: Values are automatically base64 encoded/decoded in the client library. # @return [String] attr_accessor :etag # Specifies the format of the policy. - # Valid values are 0, 1, and 3. Requests specifying an invalid value will be - # rejected. - # Operations affecting conditional bindings must specify version 3. This can - # be either setting a conditional policy, modifying a conditional binding, - # or removing a binding (conditional or unconditional) from the stored - # conditional policy. - # Operations on non-conditional policies may specify any valid value or - # leave the field unset. - # If no etag is provided in the call to `setIamPolicy`, version compliance - # checks against the stored policy is skipped. + # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value + # are rejected. + # Any operation that affects conditional role bindings must specify version + # `3`. This requirement applies to the following operations: + # * Getting a policy that includes a conditional role binding + # * Adding a conditional role binding to a policy + # * Changing a conditional role binding in a policy + # * Removing any role binding, with or without a condition, from a policy + # that includes conditions + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. + # If a policy does not include any conditions, operations on that policy may + # specify any valid version or leave the field unset. # Corresponds to the JSON property `version` # @return [Fixnum] attr_accessor :version @@ -2391,16 +2419,18 @@ module Google class SetIamPolicyRequest include Google::Apis::Core::Hashable - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -2418,13 +2448,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -2439,8 +2471,10 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). # Corresponds to the JSON property `policy` # @return [Google::Apis::ContaineranalysisV1beta1::Policy] attr_accessor :policy diff --git a/generated/google/apis/containeranalysis_v1beta1/service.rb b/generated/google/apis/containeranalysis_v1beta1/service.rb index 191068d08..ea77934d8 100644 --- a/generated/google/apis/containeranalysis_v1beta1/service.rb +++ b/generated/google/apis/containeranalysis_v1beta1/service.rb @@ -50,7 +50,8 @@ module Google # Creates new notes in batch. # @param [String] parent - # The name of the project in the form of `projects/[PROJECT_ID]`, under which + # Required. The name of the project in the form of `projects/[PROJECT_ID]`, + # under which # the notes are to be created. # @param [Google::Apis::ContaineranalysisV1beta1::BatchCreateNotesRequest] batch_create_notes_request_object # @param [String] fields @@ -84,11 +85,12 @@ module Google # Creates a new note. # @param [String] parent - # The name of the project in the form of `projects/[PROJECT_ID]`, under which + # Required. The name of the project in the form of `projects/[PROJECT_ID]`, + # under which # the note is to be created. # @param [Google::Apis::ContaineranalysisV1beta1::Note] note_object # @param [String] note_id - # The ID to use for this note. + # Required. The ID to use for this note. # @param [String] fields # Selector specifying which fields to include in a partial response. # @param [String] quota_user @@ -121,7 +123,7 @@ module Google # Deletes the specified note. # @param [String] name - # The name of the note in the form of + # Required. The name of the note in the form of # `projects/[PROVIDER_ID]/notes/[NOTE_ID]`. # @param [String] fields # Selector specifying which fields to include in a partial response. @@ -152,7 +154,7 @@ module Google # Gets the specified note. # @param [String] name - # The name of the note in the form of + # Required. The name of the note in the form of # `projects/[PROVIDER_ID]/notes/[NOTE_ID]`. # @param [String] fields # Selector specifying which fields to include in a partial response. @@ -223,7 +225,7 @@ module Google # Lists notes for the specified project. # @param [String] parent - # The name of the project to list notes for in the form of + # Required. The name of the project to list notes for in the form of # `projects/[PROJECT_ID]`. # @param [String] filter # The filter expression. @@ -264,7 +266,7 @@ module Google # Updates the specified note. # @param [String] name - # The name of the note in the form of + # Required. The name of the note in the form of # `projects/[PROVIDER_ID]/notes/[NOTE_ID]`. # @param [Google::Apis::ContaineranalysisV1beta1::Note] note_object # @param [String] update_mask @@ -382,7 +384,7 @@ module Google # this method to get all occurrences across consumer projects referencing the # specified note. # @param [String] name - # The name of the note to list occurrences for in the form of + # Required. The name of the note to list occurrences for in the form of # `projects/[PROVIDER_ID]/notes/[NOTE_ID]`. # @param [String] filter # The filter expression. @@ -422,7 +424,8 @@ module Google # Creates new occurrences in batch. # @param [String] parent - # The name of the project in the form of `projects/[PROJECT_ID]`, under which + # Required. The name of the project in the form of `projects/[PROJECT_ID]`, + # under which # the occurrences are to be created. # @param [Google::Apis::ContaineranalysisV1beta1::BatchCreateOccurrencesRequest] batch_create_occurrences_request_object # @param [String] fields @@ -456,7 +459,8 @@ module Google # Creates a new occurrence. # @param [String] parent - # The name of the project in the form of `projects/[PROJECT_ID]`, under which + # Required. The name of the project in the form of `projects/[PROJECT_ID]`, + # under which # the occurrence is to be created. # @param [Google::Apis::ContaineranalysisV1beta1::Occurrence] occurrence_object # @param [String] fields @@ -492,7 +496,7 @@ module Google # occurrence when the occurrence is no longer applicable for the given # resource. # @param [String] name - # The name of the occurrence in the form of + # Required. The name of the occurrence in the form of # `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`. # @param [String] fields # Selector specifying which fields to include in a partial response. @@ -523,7 +527,7 @@ module Google # Gets the specified occurrence. # @param [String] name - # The name of the occurrence in the form of + # Required. The name of the occurrence in the form of # `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`. # @param [String] fields # Selector specifying which fields to include in a partial response. @@ -595,7 +599,7 @@ module Google # Gets the note attached to the specified occurrence. Consumer projects can # use this method to get a note that belongs to a provider project. # @param [String] name - # The name of the occurrence in the form of + # Required. The name of the occurrence in the form of # `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`. # @param [String] fields # Selector specifying which fields to include in a partial response. @@ -626,7 +630,8 @@ module Google # Gets a summary of the number and severity of occurrences. # @param [String] parent - # The name of the project to get a vulnerability summary for in the form of + # Required. The name of the project to get a vulnerability summary for in the + # form of # `projects/[PROJECT_ID]`. # @param [String] filter # The filter expression. @@ -660,7 +665,7 @@ module Google # Lists occurrences for the specified project. # @param [String] parent - # The name of the project to list occurrences for in the form of + # Required. The name of the project to list occurrences for in the form of # `projects/[PROJECT_ID]`. # @param [String] filter # The filter expression. @@ -701,7 +706,7 @@ module Google # Updates the specified occurrence. # @param [String] name - # The name of the occurrence in the form of + # Required. The name of the occurrence in the form of # `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`. # @param [Google::Apis::ContaineranalysisV1beta1::Occurrence] occurrence_object # @param [String] update_mask @@ -817,7 +822,7 @@ module Google # Gets the specified scan configuration. # @param [String] name - # The name of the scan configuration in the form of + # Required. The name of the scan configuration in the form of # `projects/[PROJECT_ID]/scanConfigs/[SCAN_CONFIG_ID]`. # @param [String] fields # Selector specifying which fields to include in a partial response. @@ -848,10 +853,11 @@ module Google # Lists scan configurations for the specified project. # @param [String] parent - # The name of the project to list scan configurations for in the form of + # Required. The name of the project to list scan configurations for in the form + # of # `projects/[PROJECT_ID]`. # @param [String] filter - # The filter expression. + # Required. The filter expression. # @param [Fixnum] page_size # The number of scan configs to return in the list. # @param [String] page_token @@ -888,7 +894,7 @@ module Google # Updates the specified scan configuration. # @param [String] name - # The name of the scan configuration in the form of + # Required. The name of the scan configuration in the form of # `projects/[PROJECT_ID]/scanConfigs/[SCAN_CONFIG_ID]`. # @param [Google::Apis::ContaineranalysisV1beta1::ScanConfig] scan_config_object # @param [String] fields diff --git a/generated/google/apis/dlp_v2.rb b/generated/google/apis/dlp_v2.rb index ed8854803..6ab8badb5 100644 --- a/generated/google/apis/dlp_v2.rb +++ b/generated/google/apis/dlp_v2.rb @@ -27,7 +27,7 @@ module Google # @see https://cloud.google.com/dlp/docs/ module DlpV2 VERSION = 'V2' - REVISION = '20191202' + REVISION = '20191206' # View and manage your data across Google Cloud Platform services AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' diff --git a/generated/google/apis/dlp_v2/classes.rb b/generated/google/apis/dlp_v2/classes.rb index 3e298d5ee..37e9b9c19 100644 --- a/generated/google/apis/dlp_v2/classes.rb +++ b/generated/google/apis/dlp_v2/classes.rb @@ -1682,6 +1682,18 @@ module Google # @return [Google::Apis::DlpV2::GooglePrivacyDlpV2RecordTransformations] attr_accessor :record_transformations + # How to handle transformation errors during de-identification. A + # transformation error occurs when the requested transformation is incompatible + # with the data. For example, trying to de-identify an IP address using a + # `DateShift` transformation would result in a transformation error, since date + # info cannot be extracted from an IP address. + # Information about any incompatible transformations, and how they were + # handled, is returned in the response as part of the + # `TransformationOverviews`. + # Corresponds to the JSON property `transformationErrorHandling` + # @return [Google::Apis::DlpV2::GooglePrivacyDlpV2TransformationErrorHandling] + attr_accessor :transformation_error_handling + def initialize(**args) update!(**args) end @@ -1690,6 +1702,7 @@ module Google def update!(**args) @info_type_transformations = args[:info_type_transformations] if args.key?(:info_type_transformations) @record_transformations = args[:record_transformations] if args.key?(:record_transformations) + @transformation_error_handling = args[:transformation_error_handling] if args.key?(:transformation_error_handling) end end @@ -3808,6 +3821,22 @@ module Google end end + # Skips the data without modifying it if the requested transformation would + # cause an error. For example, if a `DateShift` transformation were applied + # an an IP address, this mode would leave the IP address unchanged in the + # response. + class GooglePrivacyDlpV2LeaveUntransformed + include Google::Apis::Core::Hashable + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + end + end + # Message for specifying an adjustment to the likelihood of a finding as # part of a detection rule. class GooglePrivacyDlpV2LikelihoodAdjustment @@ -5575,6 +5604,19 @@ module Google end end + # Throw an error and fail the request when a transformation error occurs. + class GooglePrivacyDlpV2ThrowError + include Google::Apis::Core::Hashable + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + end + end + # For use with `Date`, `Timestamp`, and `TimeOfDay`, extract or preserve a # portion of the value. class GooglePrivacyDlpV2TimePartConfig @@ -5658,6 +5700,41 @@ module Google end end + # How to handle transformation errors during de-identification. A + # transformation error occurs when the requested transformation is incompatible + # with the data. For example, trying to de-identify an IP address using a + # `DateShift` transformation would result in a transformation error, since date + # info cannot be extracted from an IP address. + # Information about any incompatible transformations, and how they were + # handled, is returned in the response as part of the + # `TransformationOverviews`. + class GooglePrivacyDlpV2TransformationErrorHandling + include Google::Apis::Core::Hashable + + # Skips the data without modifying it if the requested transformation would + # cause an error. For example, if a `DateShift` transformation were applied + # an an IP address, this mode would leave the IP address unchanged in the + # response. + # Corresponds to the JSON property `leaveUntransformed` + # @return [Google::Apis::DlpV2::GooglePrivacyDlpV2LeaveUntransformed] + attr_accessor :leave_untransformed + + # Throw an error and fail the request when a transformation error occurs. + # Corresponds to the JSON property `throwError` + # @return [Google::Apis::DlpV2::GooglePrivacyDlpV2ThrowError] + attr_accessor :throw_error + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @leave_untransformed = args[:leave_untransformed] if args.key?(:leave_untransformed) + @throw_error = args[:throw_error] if args.key?(:throw_error) + end + end + # Overview of the modifications that occurred. class GooglePrivacyDlpV2TransformationOverview include Google::Apis::Core::Hashable diff --git a/generated/google/apis/dlp_v2/representations.rb b/generated/google/apis/dlp_v2/representations.rb index 20f146318..fe6aea84d 100644 --- a/generated/google/apis/dlp_v2/representations.rb +++ b/generated/google/apis/dlp_v2/representations.rb @@ -628,6 +628,12 @@ module Google include Google::Apis::Core::JsonObjectSupport end + class GooglePrivacyDlpV2LeaveUntransformed + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + class GooglePrivacyDlpV2LikelihoodAdjustment class Representation < Google::Apis::Core::JsonRepresentation; end @@ -964,6 +970,12 @@ module Google include Google::Apis::Core::JsonObjectSupport end + class GooglePrivacyDlpV2ThrowError + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + class GooglePrivacyDlpV2TimePartConfig class Representation < Google::Apis::Core::JsonRepresentation; end @@ -982,6 +994,12 @@ module Google include Google::Apis::Core::JsonObjectSupport end + class GooglePrivacyDlpV2TransformationErrorHandling + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + class GooglePrivacyDlpV2TransformationOverview class Representation < Google::Apis::Core::JsonRepresentation; end @@ -1529,6 +1547,8 @@ module Google property :record_transformations, as: 'recordTransformations', class: Google::Apis::DlpV2::GooglePrivacyDlpV2RecordTransformations, decorator: Google::Apis::DlpV2::GooglePrivacyDlpV2RecordTransformations::Representation + property :transformation_error_handling, as: 'transformationErrorHandling', class: Google::Apis::DlpV2::GooglePrivacyDlpV2TransformationErrorHandling, decorator: Google::Apis::DlpV2::GooglePrivacyDlpV2TransformationErrorHandling::Representation + end end @@ -2144,6 +2164,12 @@ module Google end end + class GooglePrivacyDlpV2LeaveUntransformed + # @private + class Representation < Google::Apis::Core::JsonRepresentation + end + end + class GooglePrivacyDlpV2LikelihoodAdjustment # @private class Representation < Google::Apis::Core::JsonRepresentation @@ -2692,6 +2718,12 @@ module Google end end + class GooglePrivacyDlpV2ThrowError + # @private + class Representation < Google::Apis::Core::JsonRepresentation + end + end + class GooglePrivacyDlpV2TimePartConfig # @private class Representation < Google::Apis::Core::JsonRepresentation @@ -2717,6 +2749,16 @@ module Google end end + class GooglePrivacyDlpV2TransformationErrorHandling + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :leave_untransformed, as: 'leaveUntransformed', class: Google::Apis::DlpV2::GooglePrivacyDlpV2LeaveUntransformed, decorator: Google::Apis::DlpV2::GooglePrivacyDlpV2LeaveUntransformed::Representation + + property :throw_error, as: 'throwError', class: Google::Apis::DlpV2::GooglePrivacyDlpV2ThrowError, decorator: Google::Apis::DlpV2::GooglePrivacyDlpV2ThrowError::Representation + + end + end + class GooglePrivacyDlpV2TransformationOverview # @private class Representation < Google::Apis::Core::JsonRepresentation diff --git a/generated/google/apis/iap_v1.rb b/generated/google/apis/iap_v1.rb index 6ca5c9ede..e1c33fd42 100644 --- a/generated/google/apis/iap_v1.rb +++ b/generated/google/apis/iap_v1.rb @@ -25,7 +25,7 @@ module Google # @see https://cloud.google.com/iap module IapV1 VERSION = 'V1' - REVISION = '20191011' + REVISION = '20191206' # View and manage your data across Google Cloud Platform services AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' diff --git a/generated/google/apis/iap_v1/classes.rb b/generated/google/apis/iap_v1/classes.rb index f1cc445d2..b3175398d 100644 --- a/generated/google/apis/iap_v1/classes.rb +++ b/generated/google/apis/iap_v1/classes.rb @@ -100,6 +100,23 @@ module Google # account. For example, `my-other-app@appspot.gserviceaccount.com`. # * `group:`emailid``: An email address that represents a Google group. # For example, `admins@example.com`. + # * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a user that has been recently deleted. For + # example, `alice@example.com?uid=123456789012345678901`. If the user is + # recovered, this value reverts to `user:`emailid`` and the recovered user + # retains the role in the binding. + # * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus + # unique identifier) representing a service account that has been recently + # deleted. For example, + # `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. + # If the service account is undeleted, this value reverts to + # `serviceAccount:`emailid`` and the undeleted service account retains the + # role in the binding. + # * `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique + # identifier) representing a Google group that has been recently + # deleted. For example, `admins@example.com?uid=123456789012345678901`. If + # the group is recovered, this value reverts to `group:`emailid`` and the + # recovered group retains the role in the binding. # * `domain:`domain``: The G Suite domain (primary) that represents all the # users of that domain. For example, `google.com` or `example.com`. # Corresponds to the JSON property `members` @@ -124,6 +141,48 @@ module Google end end + # OAuth brand data. + # NOTE: Only contains a portion of the data that describes a brand. + class Brand + include Google::Apis::Core::Hashable + + # Application name displayed on OAuth consent screen. + # Corresponds to the JSON property `applicationTitle` + # @return [String] + attr_accessor :application_title + + # Output only. Identifier of the brand. + # NOTE: GCP project number achieves the same brand identification purpose as + # only one brand per project can be created. + # Corresponds to the JSON property `name` + # @return [String] + attr_accessor :name + + # Output only. Whether the brand is only intended for usage inside the + # GSuite organization only. + # Corresponds to the JSON property `orgInternalOnly` + # @return [Boolean] + attr_accessor :org_internal_only + alias_method :org_internal_only?, :org_internal_only + + # Support email displayed on the OAuth consent screen. + # Corresponds to the JSON property `supportEmail` + # @return [String] + attr_accessor :support_email + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @application_title = args[:application_title] if args.key?(:application_title) + @name = args[:name] if args.key?(:name) + @org_internal_only = args[:org_internal_only] if args.key?(:org_internal_only) + @support_email = args[:support_email] if args.key?(:support_email) + end + end + # Allows customers to configure HTTP request paths that'll allow HTTP OPTIONS # call to bypass authentication and authorization. class CorsSettings @@ -169,6 +228,25 @@ module Google end end + # A generic empty message that you can re-use to avoid defining duplicated + # empty messages in your APIs. A typical example is to use it as the request + # or the response type of an API method. For instance: + # service Foo ` + # rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); + # ` + # The JSON representation for `Empty` is empty JSON object ````. + class Empty + include Google::Apis::Core::Hashable + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + end + end + # Represents an expression text. Example: # title: "User account presence" # description: "Determines whether the request has a user account" @@ -322,6 +400,82 @@ module Google end end + # Contains the data that describes an Identity Aware Proxy owned client. + class IdentityAwareProxyClient + include Google::Apis::Core::Hashable + + # Human-friendly name given to the OAuth client. + # Corresponds to the JSON property `displayName` + # @return [String] + attr_accessor :display_name + + # Output only. Unique identifier of the OAuth client. + # Corresponds to the JSON property `name` + # @return [String] + attr_accessor :name + + # Output only. Client secret of the OAuth client. + # Corresponds to the JSON property `secret` + # @return [String] + attr_accessor :secret + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @display_name = args[:display_name] if args.key?(:display_name) + @name = args[:name] if args.key?(:name) + @secret = args[:secret] if args.key?(:secret) + end + end + + # Response message for ListBrands. + class ListBrandsResponse + include Google::Apis::Core::Hashable + + # Brands existing in the project. + # Corresponds to the JSON property `brands` + # @return [Array] + attr_accessor :brands + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @brands = args[:brands] if args.key?(:brands) + end + end + + # Response message for ListIdentityAwareProxyClients. + class ListIdentityAwareProxyClientsResponse + include Google::Apis::Core::Hashable + + # Clients existing in the brand. + # Corresponds to the JSON property `identityAwareProxyClients` + # @return [Array] + attr_accessor :identity_aware_proxy_clients + + # A token, which can be send as `page_token` to retrieve the next page. + # If this field is omitted, there are no subsequent pages. + # Corresponds to the JSON property `nextPageToken` + # @return [String] + attr_accessor :next_page_token + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @identity_aware_proxy_clients = args[:identity_aware_proxy_clients] if args.key?(:identity_aware_proxy_clients) + @next_page_token = args[:next_page_token] if args.key?(:next_page_token) + end + end + # Configuration for OAuth login&consent flow behavior. class OAuthSettings include Google::Apis::Core::Hashable @@ -345,16 +499,18 @@ module Google end end - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -372,13 +528,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -393,14 +551,16 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). class Policy include Google::Apis::Core::Hashable - # Associates a list of `members` to a `role`. Optionally may specify a - # `condition` that determines when binding is in effect. - # `bindings` with no members will result in an error. + # Associates a list of `members` to a `role`. Optionally, may specify a + # `condition` that determines how and when the `bindings` are applied. Each + # of the `bindings` must contain at least one member. # Corresponds to the JSON property `bindings` # @return [Array] attr_accessor :bindings @@ -412,25 +572,31 @@ module Google # conditions: An `etag` is returned in the response to `getIamPolicy`, and # systems are expected to put that etag in the request to `setIamPolicy` to # ensure that their change will be applied to the same version of the policy. - # If no `etag` is provided in the call to `setIamPolicy`, then the existing - # policy is overwritten. Due to blind-set semantics of an etag-less policy, - # 'setIamPolicy' will not fail even if either of incoming or stored policy - # does not meet the version requirements. + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. # Corresponds to the JSON property `etag` # NOTE: Values are automatically base64 encoded/decoded in the client library. # @return [String] attr_accessor :etag # Specifies the format of the policy. - # Valid values are 0, 1, and 3. Requests specifying an invalid value will be - # rejected. - # Operations affecting conditional bindings must specify version 3. This can - # be either setting a conditional policy, modifying a conditional binding, - # or removing a conditional binding from the stored conditional policy. - # Operations on non-conditional policies may specify any valid value or - # leave the field unset. - # If no etag is provided in the call to `setIamPolicy`, any version - # compliance checks on the incoming and/or stored policy is skipped. + # Valid values are `0`, `1`, and `3`. Requests that specify an invalid value + # are rejected. + # Any operation that affects conditional role bindings must specify version + # `3`. This requirement applies to the following operations: + # * Getting a policy that includes a conditional role binding + # * Adding a conditional role binding to a policy + # * Changing a conditional role binding in a policy + # * Removing any role binding, with or without a condition, from a policy + # that includes conditions + # **Important:** If you use IAM Conditions, you must include the `etag` field + # whenever you call `setIamPolicy`. If you omit this field, then IAM allows + # you to overwrite a version `3` policy with a version `1` policy, and all of + # the conditions in the version `3` policy are lost. + # If a policy does not include any conditions, operations on that policy may + # specify any valid version or leave the field unset. # Corresponds to the JSON property `version` # @return [Fixnum] attr_accessor :version @@ -447,20 +613,35 @@ module Google end end + # The request sent to ResetIdentityAwareProxyClientSecret. + class ResetIdentityAwareProxyClientSecretRequest + include Google::Apis::Core::Hashable + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + end + end + # Request message for `SetIamPolicy` method. class SetIamPolicyRequest include Google::Apis::Core::Hashable - # Defines an Identity and Access Management (IAM) policy. It is used to - # specify access control policies for Cloud Platform resources. + # An Identity and Access Management (IAM) policy, which specifies access + # controls for Google Cloud resources. # A `Policy` is a collection of `bindings`. A `binding` binds one or more # `members` to a single `role`. Members can be user accounts, service accounts, # Google groups, and domains (such as G Suite). A `role` is a named list of - # permissions (defined by IAM or configured by users). A `binding` can - # optionally specify a `condition`, which is a logic expression that further - # constrains the role binding based on attributes about the request and/or - # target resource. - # **JSON Example** + # permissions; each `role` can be an IAM predefined role or a user-created + # custom role. + # Optionally, a `binding` can specify a `condition`, which is a logical + # expression that allows access to a resource only if the expression evaluates + # to `true`. A condition can add constraints based on attributes of the + # request, the resource, or both. + # **JSON example:** # ` # "bindings": [ # ` @@ -478,13 +659,15 @@ module Google # "condition": ` # "title": "expirable access", # "description": "Does not grant access after Sep 2020", - # "expression": "request.time < - # timestamp('2020-10-01T00:00:00.000Z')", + # "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z') + # ", # ` # ` - # ] + # ], + # "etag": "BwWWja0YfJA=", + # "version": 3 # ` - # **YAML Example** + # **YAML example:** # bindings: # - members: # - user:mike@example.com @@ -499,8 +682,10 @@ module Google # title: expirable access # description: Does not grant access after Sep 2020 # expression: request.time < timestamp('2020-10-01T00:00:00.000Z') + # - etag: BwWWja0YfJA= + # - version: 3 # For a description of IAM and its features, see the - # [IAM developer's guide](https://cloud.google.com/iam/docs). + # [IAM documentation](https://cloud.google.com/iam/docs/). # Corresponds to the JSON property `policy` # @return [Google::Apis::IapV1::Policy] attr_accessor :policy diff --git a/generated/google/apis/iap_v1/representations.rb b/generated/google/apis/iap_v1/representations.rb index e2150e218..4e87c8009 100644 --- a/generated/google/apis/iap_v1/representations.rb +++ b/generated/google/apis/iap_v1/representations.rb @@ -40,6 +40,12 @@ module Google include Google::Apis::Core::JsonObjectSupport end + class Brand + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + class CorsSettings class Representation < Google::Apis::Core::JsonRepresentation; end @@ -52,6 +58,12 @@ module Google include Google::Apis::Core::JsonObjectSupport end + class Empty + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + class Expr class Representation < Google::Apis::Core::JsonRepresentation; end @@ -82,6 +94,24 @@ module Google include Google::Apis::Core::JsonObjectSupport end + class IdentityAwareProxyClient + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ListBrandsResponse + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + + class ListIdentityAwareProxyClientsResponse + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + class OAuthSettings class Representation < Google::Apis::Core::JsonRepresentation; end @@ -94,6 +124,12 @@ module Google include Google::Apis::Core::JsonObjectSupport end + class ResetIdentityAwareProxyClientSecretRequest + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + class SetIamPolicyRequest class Representation < Google::Apis::Core::JsonRepresentation; end @@ -142,6 +178,16 @@ module Google end end + class Brand + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :application_title, as: 'applicationTitle' + property :name, as: 'name' + property :org_internal_only, as: 'orgInternalOnly' + property :support_email, as: 'supportEmail' + end + end + class CorsSettings # @private class Representation < Google::Apis::Core::JsonRepresentation @@ -156,6 +202,12 @@ module Google end end + class Empty + # @private + class Representation < Google::Apis::Core::JsonRepresentation + end + end + class Expr # @private class Representation < Google::Apis::Core::JsonRepresentation @@ -200,6 +252,32 @@ module Google end end + class IdentityAwareProxyClient + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :display_name, as: 'displayName' + property :name, as: 'name' + property :secret, as: 'secret' + end + end + + class ListBrandsResponse + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :brands, as: 'brands', class: Google::Apis::IapV1::Brand, decorator: Google::Apis::IapV1::Brand::Representation + + end + end + + class ListIdentityAwareProxyClientsResponse + # @private + class Representation < Google::Apis::Core::JsonRepresentation + collection :identity_aware_proxy_clients, as: 'identityAwareProxyClients', class: Google::Apis::IapV1::IdentityAwareProxyClient, decorator: Google::Apis::IapV1::IdentityAwareProxyClient::Representation + + property :next_page_token, as: 'nextPageToken' + end + end + class OAuthSettings # @private class Representation < Google::Apis::Core::JsonRepresentation @@ -217,6 +295,12 @@ module Google end end + class ResetIdentityAwareProxyClientSecretRequest + # @private + class Representation < Google::Apis::Core::JsonRepresentation + end + end + class SetIamPolicyRequest # @private class Representation < Google::Apis::Core::JsonRepresentation diff --git a/generated/google/apis/iap_v1/service.rb b/generated/google/apis/iap_v1/service.rb index e8d7b556b..013897708 100644 --- a/generated/google/apis/iap_v1/service.rb +++ b/generated/google/apis/iap_v1/service.rb @@ -47,6 +47,298 @@ module Google @batch_path = 'batch' end + # Constructs a new OAuth brand for the project if one does not exists. + # The created brand is 'internal only', meaning that OAuth clients created + # under it only accept requests from users who belong to the same GSuites + # account as the project. The brand is created in un-reviewed status. + # NOTE: the 'internal_only' can be manually changed in Pantheon UI. + # Requires that brand does not already exists for the project. + # @param [String] parent + # Required. GCP Project number/id under which the brand is to be created. + # In the following format: projects/`project_number/id`. + # @param [Google::Apis::IapV1::Brand] brand_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::IapV1::Brand] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::IapV1::Brand] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def create_oauth_project_brand(parent, brand_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/oauth/{+parent}/brands', options) + command.request_representation = Google::Apis::IapV1::Brand::Representation + command.request_object = brand_object + command.response_representation = Google::Apis::IapV1::Brand::Representation + command.response_class = Google::Apis::IapV1::Brand + command.params['parent'] = parent unless parent.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Retrieves the OAuth brand of the project. + # @param [String] name + # Required. Name of the brand to be fetched. + # In the following format: projects/`project_number/id`/brands/`brand`. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::IapV1::Brand] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::IapV1::Brand] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_oauth_project_brand(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/oauth/{+name}', options) + command.response_representation = Google::Apis::IapV1::Brand::Representation + command.response_class = Google::Apis::IapV1::Brand + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Lists the existing brands for the project. + # @param [String] parent + # Required. GCP Project number/id. + # In the following format: projects/`project_number/id`. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::IapV1::ListBrandsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::IapV1::ListBrandsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def list_oauth_project_brands(parent, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/oauth/{+parent}/brands', options) + command.response_representation = Google::Apis::IapV1::ListBrandsResponse::Representation + command.response_class = Google::Apis::IapV1::ListBrandsResponse + command.params['parent'] = parent unless parent.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Creates an Identity Aware Proxy (IAP) OAuth client, the client is owned + # by IAP. + # Requires that the brand for the project exists and that it is set for + # internal only use. + # @param [String] parent + # Required. Path to create the client in. + # In the following format: + # projects/`project_number/id`/brands/`brand`. + # The project must belong to a GSuite account. + # @param [Google::Apis::IapV1::IdentityAwareProxyClient] identity_aware_proxy_client_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::IapV1::IdentityAwareProxyClient] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::IapV1::IdentityAwareProxyClient] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def create_oauth_project_brand_identity_aware_proxy_client(parent, identity_aware_proxy_client_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/oauth/{+parent}/identityAwareProxyClients', options) + command.request_representation = Google::Apis::IapV1::IdentityAwareProxyClient::Representation + command.request_object = identity_aware_proxy_client_object + command.response_representation = Google::Apis::IapV1::IdentityAwareProxyClient::Representation + command.response_class = Google::Apis::IapV1::IdentityAwareProxyClient + command.params['parent'] = parent unless parent.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Deletes an Identity Aware Proxy (IAP) OAuth client. Useful if the secret + # was compromised. + # Requires that the client is owned by IAP. + # @param [String] name + # Required. Name of the Identity Aware Proxy client to be deleted. + # In the following format: + # projects/`project_number/id`/brands/`brand`/identityAwareProxyClients/` + # client_id`. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::IapV1::Empty] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::IapV1::Empty] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def delete_oauth_project_brand_identity_aware_proxy_client(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:delete, 'v1/oauth/{+name}', options) + command.response_representation = Google::Apis::IapV1::Empty::Representation + command.response_class = Google::Apis::IapV1::Empty + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Retrieves an Identity Aware Proxy (IAP) OAuth client. + # Requires that the client is owned by IAP. + # @param [String] name + # Required. Name of the Identity Aware Proxy client to be fetched. + # In the following format: + # projects/`project_number/id`/brands/`brand`/identityAwareProxyClients/` + # client_id`. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::IapV1::IdentityAwareProxyClient] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::IapV1::IdentityAwareProxyClient] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def get_oauth_project_brand_identity_aware_proxy_client(name, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/oauth/{+name}', options) + command.response_representation = Google::Apis::IapV1::IdentityAwareProxyClient::Representation + command.response_class = Google::Apis::IapV1::IdentityAwareProxyClient + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Lists the existing clients for the brand. + # @param [String] parent + # Required. Full brand path. + # In the following format: projects/`project_number/id`/brands/`brand`. + # @param [Fixnum] page_size + # The maximum number of clients to return. The service may return fewer than + # this value. + # If unspecified, at most 100 clients will be returned. + # The maximum value is 1000; values above 1000 will be coerced to 1000. + # @param [String] page_token + # A page token, received from a previous `ListIdentityAwareProxyClients` + # call. Provide this to retrieve the subsequent page. + # When paginating, all other parameters provided to + # `ListIdentityAwareProxyClients` must match the call that provided the page + # token. + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::IapV1::ListIdentityAwareProxyClientsResponse] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::IapV1::ListIdentityAwareProxyClientsResponse] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def list_oauth_project_brand_identity_aware_proxy_clients(parent, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:get, 'v1/oauth/{+parent}/identityAwareProxyClients', options) + command.response_representation = Google::Apis::IapV1::ListIdentityAwareProxyClientsResponse::Representation + command.response_class = Google::Apis::IapV1::ListIdentityAwareProxyClientsResponse + command.params['parent'] = parent unless parent.nil? + command.query['pageSize'] = page_size unless page_size.nil? + command.query['pageToken'] = page_token unless page_token.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + + # Resets an Identity Aware Proxy (IAP) OAuth client secret. Useful for + # removing obsolete clients, managing the number of clients in a given + # project, and cleaning up after tests. + # Requires that the client is owned by IAP. + # @param [String] name + # Required. Name of the Identity Aware Proxy client to that will have its + # secret reset. In the following format: + # projects/`project_number/id`/brands/`brand`/identityAwareProxyClients/` + # client_id`. + # @param [Google::Apis::IapV1::ResetIdentityAwareProxyClientSecretRequest] reset_identity_aware_proxy_client_secret_request_object + # @param [String] fields + # Selector specifying which fields to include in a partial response. + # @param [String] quota_user + # Available to use for quota purposes for server-side applications. Can be any + # arbitrary string assigned to a user, but should not exceed 40 characters. + # @param [Google::Apis::RequestOptions] options + # Request-specific options + # + # @yield [result, err] Result & error if block supplied + # @yieldparam result [Google::Apis::IapV1::IdentityAwareProxyClient] parsed result object + # @yieldparam err [StandardError] error object if request failed + # + # @return [Google::Apis::IapV1::IdentityAwareProxyClient] + # + # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried + # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification + # @raise [Google::Apis::AuthorizationError] Authorization is required + def reset_oauth_project_brand_identity_aware_proxy_client_secret(name, reset_identity_aware_proxy_client_secret_request_object = nil, fields: nil, quota_user: nil, options: nil, &block) + command = make_simple_command(:post, 'v1/oauth/{+name}:resetSecret', options) + command.request_representation = Google::Apis::IapV1::ResetIdentityAwareProxyClientSecretRequest::Representation + command.request_object = reset_identity_aware_proxy_client_secret_request_object + command.response_representation = Google::Apis::IapV1::IdentityAwareProxyClient::Representation + command.response_class = Google::Apis::IapV1::IdentityAwareProxyClient + command.params['name'] = name unless name.nil? + command.query['fields'] = fields unless fields.nil? + command.query['quotaUser'] = quota_user unless quota_user.nil? + execute_or_queue_command(command, &block) + end + # Gets the access control policy for an Identity-Aware Proxy protected # resource. # More information about managing access via IAP can be found at: diff --git a/generated/google/apis/serviceconsumermanagement_v1.rb b/generated/google/apis/serviceconsumermanagement_v1.rb index fbad03b77..dc74e9944 100644 --- a/generated/google/apis/serviceconsumermanagement_v1.rb +++ b/generated/google/apis/serviceconsumermanagement_v1.rb @@ -25,7 +25,7 @@ module Google # @see https://cloud.google.com/service-consumer-management/docs/overview module ServiceconsumermanagementV1 VERSION = 'V1' - REVISION = '20191206' + REVISION = '20191210' # View and manage your data across Google Cloud Platform services AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform' diff --git a/generated/google/apis/serviceconsumermanagement_v1/classes.rb b/generated/google/apis/serviceconsumermanagement_v1/classes.rb index 58e041eae..24a986c30 100644 --- a/generated/google/apis/serviceconsumermanagement_v1/classes.rb +++ b/generated/google/apis/serviceconsumermanagement_v1/classes.rb @@ -3979,6 +3979,40 @@ module Google end end + # A default identity in the Identity and Access Management API. + class V1DefaultIdentity + include Google::Apis::Core::Hashable + + # The email address of the default identity. + # Corresponds to the JSON property `email` + # @return [String] + attr_accessor :email + + # Default identity resource name. + # An example name would be: + # `services/serviceconsumermanagement.googleapis.com/projects/123/ + # defaultIdentity` + # Corresponds to the JSON property `name` + # @return [String] + attr_accessor :name + + # The unique and stable id of the default identity. + # Corresponds to the JSON property `uniqueId` + # @return [String] + attr_accessor :unique_id + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @email = args[:email] if args.key?(:email) + @name = args[:name] if args.key?(:name) + @unique_id = args[:unique_id] if args.key?(:unique_id) + end + end + # Response message for the `DisableConsumer` method. # This response message is assigned to the `response` field of the returned # Operation when that operation is done. @@ -4009,6 +4043,41 @@ module Google end end + # Response message for the `GenerateDefaultIdentity` method. + # This response message is assigned to the `response` field of the returned + # Operation when that operation is done. + class V1GenerateDefaultIdentityResponse + include Google::Apis::Core::Hashable + + # Status of the role attachment. Under development (go/si-attach-role), + # currently always return ATTACH_STATUS_UNSPECIFIED) + # Corresponds to the JSON property `attachStatus` + # @return [String] + attr_accessor :attach_status + + # A default identity in the Identity and Access Management API. + # Corresponds to the JSON property `identity` + # @return [Google::Apis::ServiceconsumermanagementV1::V1DefaultIdentity] + attr_accessor :identity + + # Role attached to consumer project. Empty if not attached in this + # request. (Under development, currently always return empty.) + # Corresponds to the JSON property `role` + # @return [String] + attr_accessor :role + + def initialize(**args) + update!(**args) + end + + # Update properties of this object + def update!(**args) + @attach_status = args[:attach_status] if args.key?(:attach_status) + @identity = args[:identity] if args.key?(:identity) + @role = args[:role] if args.key?(:role) + end + end + # Response message for the `GenerateServiceAccount` method. # This response message is assigned to the `response` field of the returned # Operation when that operation is done. diff --git a/generated/google/apis/serviceconsumermanagement_v1/representations.rb b/generated/google/apis/serviceconsumermanagement_v1/representations.rb index 8f847762d..dc29b31bc 100644 --- a/generated/google/apis/serviceconsumermanagement_v1/representations.rb +++ b/generated/google/apis/serviceconsumermanagement_v1/representations.rb @@ -496,6 +496,12 @@ module Google include Google::Apis::Core::JsonObjectSupport end + class V1DefaultIdentity + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + class V1DisableConsumerResponse class Representation < Google::Apis::Core::JsonRepresentation; end @@ -508,6 +514,12 @@ module Google include Google::Apis::Core::JsonObjectSupport end + class V1GenerateDefaultIdentityResponse + class Representation < Google::Apis::Core::JsonRepresentation; end + + include Google::Apis::Core::JsonObjectSupport + end + class V1GenerateServiceAccountResponse class Representation < Google::Apis::Core::JsonRepresentation; end @@ -1340,6 +1352,15 @@ module Google end end + class V1DefaultIdentity + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :email, as: 'email' + property :name, as: 'name' + property :unique_id, as: 'uniqueId' + end + end + class V1DisableConsumerResponse # @private class Representation < Google::Apis::Core::JsonRepresentation @@ -1352,6 +1373,16 @@ module Google end end + class V1GenerateDefaultIdentityResponse + # @private + class Representation < Google::Apis::Core::JsonRepresentation + property :attach_status, as: 'attachStatus' + property :identity, as: 'identity', class: Google::Apis::ServiceconsumermanagementV1::V1DefaultIdentity, decorator: Google::Apis::ServiceconsumermanagementV1::V1DefaultIdentity::Representation + + property :role, as: 'role' + end + end + class V1GenerateServiceAccountResponse # @private class Representation < Google::Apis::Core::JsonRepresentation